CISA Adds Six Known Exploited Vulnerabilities to Catalog

CISA has identified six new Microsoft vulnerabilities that are being actively exploited. These vulnerabilities allow attackers to execute remote code, escalate privileges, and bypass security features. CISA urges federal agencies and all organizations to prioritize remediating these vulnerabilities as they pose a significant risk. The Known Exploited Vulnerabilities Catalog lists these vulnerabilities, which federal agencies are required to address by specified deadlines. Organizations are strongly encouraged to adopt the catalog as part of their vulnerability management practices to reduce exposure to cyber threats. CISA will continue to update the catalog with additional vulnerabilities that meet the established criteria.